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> Security Research & Consultancy 


security Researcher @ Midnight Blue 


Principal Security Consultant @ Secura 





>Focus: Embedded Systems 


ICS, Automotive, lol, Comms, ... 


JOS WETZELS 





@S4MVARTAKA 





> Previously 


Protection of Critical Infrastructure @ 
University of Twente [NL] 


httos://www.midnightbluelabs.com 








> 8761 documents & files 


SS gy , Belonging to CIA’s Center for Cyber Intelligence 
Wikileaks (CCl) 


Mainly dated 2013-2016 








> Exploits, Implants, TTPs 


IOS, Android, OSx, Linux, Windows, 
samsung Smart TVs, Routers, ... 





> Most entries got in-depth coverage 
_ By press, security researchers, IC enthusiasts, 


7 MARCH 2017 








¢ WikiLeaks 








All Releases 
EXC EPI F O R 1... | Protego} / September, 2017 


Angelfire - 31 August, 2017 








ExpressLane - 24 August, 201/ 


vault /- 





“protego "protego 





vault 7" CouchPotato - 10 August, 2017 


: Jumbo - 3 August, 201/ 
Q Alle ©@ Shopping | 


imperial - 2/ July, 2017 





Ongeveer}1 .890 resultaten Da 


UCL / Raytheon - 19 July, 2017 





> Wikileaks Claimed Purpose 


“Raytheon-developed guided missile system 
installed on Pratt & Whitney aircratt™ 





WikiLeaks @ 
im 


@wikileaks 





( 


RELEASE: CIA suspected . 








And 37 related proprietary hardware/software 


ed missile system Protego manuals trom Microchip Technology Inc. 


#vault7 wikileaks.org/vault//#Protego 





for GPS gui 






> Maintained between 2014-2015 


> Very different from other CCl/Vault 7 projects 
No clear indication why It was in the repos ... 














OMETHING'S NOT RIGHT ... 











PROTEGO ARCHITECTURE (SIMPLIFIED) 





Single Wire Serial Single Wire Serial 


Master Processor (MP) Tube Smart Switch (TSS) issile Smart Switch (MSS 


Collar Processor Processor 
(P1) (P2) (P3) 


RS422 Full-Duplex 


-rogramming & Configuration / Deployment Box 








¢ Protego subsystem 


' ¢ Deployment box 


Master Processor (MP) Slave Processor (MP) | | 
Display RS422 Interface } ¢ Inter-MCU comms over 


(P5) (P4) | serial 





= Incoming GPS signals 





SO FAR, SO GOOD RIGHT? 





| 
= 


aaa WUE) Ba Pe eee 
“10 
FIG.5a 
Missile 





THIS IS ALL CLEARLY MISSILE SYSTEMS TERMINOLOGY 


BUT #1: PWA? 


documents indicate that the system Is Installed on-board a Pratt & VVhitney aircraft (PVA) equipped 





W4kiLeaks 


with missile launch systems (air-to-air and/or air-to-ground). 





Pi - Master Processor (MP), Master Processor on PWA 


‘Z Pratt & Whitney 


A United Technologies Company 








Pl S - Master Processor (MP), Slave Processor on PWA 


¢ P&W assertion seems based solely on PWA abbreviation 
¢ P&W manufacture engines, not aircraft 


¢ Doesnt make sense for Protegos MCUs to reside “on the engine 


PWA = PRINTED 
WIRING 
ASSEMBLY 





e-PWA Is a PCB after 
all electrical 
components are 
attached 


eMakes sense tnat 
MCUs are referred to 
as residing ‘on PWA 








BUT #2: COMPLICATING TERMINOLOGY 








Audio and Sigma Dot 


Out 





Suitcase Only 





BCU Power Detected 


NOT TYPICAL AIR-TO-SURFACE (ASM) / 
AIR-TO-AIR (AAM) MISSILE TERMINOLOGY ... 
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eh 4 
y (| 
- 











g. 


PROTEGO IS A MANPADS 
‘SMART’ ARMS CONTROL SOLUTION 











Man-portable air-defense systems (MANPADS) are portable surface-to-air 
missile systems eg. famous FIM-92 Stinger manufactured by Raytheon 





ASSEMBLED, INCLUDING LAUNCH TUBE 





LAUNCH TUBE 


¢ Missiles typically delivered in discardable launch tube 
(includes sight assembly) 


¢ Tubes can be reused but done at depot, not on 
battlefield 


¢ Transported in dedicated case 


“Images: FIM-92 Stinger via Stratfor 


isuidance 
section 


Propulsion Section 
Warmead Tall 
“+ Assem | 
"NS | 


———— _ 













uldedies ' Tailfins 
Assembly — Flight (4) 
| attery 
Notor 
Control 
Suitaces 
Control 
Assembly 


Guidance and Control Section 


Seeker Head Warhead 


\ 





¢1R seeker allows for ‘passive homing (fire & forget)** 


MISSILES 


¢Guidance & control steer missile during chase 


¢ Warhead goes boom 


“* note that there are also active homing ‘command guidance’ MANPADS 


* Images: FIM-92 Stinger via C. Kogler/B.I.C.C. & 
US Marine Coros Warfighting Publications 


BATTERY COOLANT 
UNIT (BCU) 





GRIPSTOCK 





¢ Detachable gripstock with trigger & targeting electronics 


° Nagi 7 missile to unlock seeker, initiate target lock, trigger 
aunc 





GRIPSTOCK 


¢ Connection to optional IFF transceiver 


¢ BCU for power & cooling inserted into gripstock 


* Images: FIM-92 Stinger via Stratfor, C. Kogler/B.1.C.C. 


LAUNCH 
PROCEDURE 


1. Attach gripstock & IFF to launch tube 

2. Use sight to track aircraft 

3. Get audio feedback from IFF on target status 

4. Insert BCU 

5. Get audio feedback from gripstock on target lock 


6. Pull trigger to fire 









IFPI ACG us tion 
indicators - 


Programmer 
Lannector 


Inte rroagater 





Interconne cline 
Cable 





*Images: US Marine Corps Warfighting 
Publications 


PROTEGO OPERATIONAL CONDITIONS 


MP 





Beacon 














Closed 
Audio Switch 














System Is Operational 


IF 
IN BORDER AND 
VALID GPS AND 
NOT END OF OP PERIOD 








*[mage: mobgen.com 





WHY WOULD THE CIA WANT THIS? 











CIA ‘Pian B’ for Syria would give rebels MANPADs to ‘counter 
Russia’ - report 


Russia must find out where Syrian militants got MANPADS that 
downed Su-25 — MPs 











The pressure on the U.S. and its allies In the region to provide 








ler weapons to opposition militias will increase if Russian- 
backed Syrian forces fully break the ceasefire, which has held 1n 
t month, the Wal. 





most of Syria for six weeks, the official said. La: 





Street Journal reported that CIA is preparing a “Plan B’ in case 





the ceasefire completely crumbles that involves supplying vetted 


ith MANPADS. 








moderate rebel fighters w 


* Source: LA Times, RT, WSJ, FP 
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to be 
struction 1 
ins — is paid 
which is then used @ purchase se 
ame and other products for ex rts 
profits are clearly not Mr Bin Lad- 
en’s top priority. FP 
How did he feel about Algeria, I 
_ asked? But a man in a green suit 
_ calling himself Mohamed Moussa 
_— he claimed to be Nigerian al- 
though he was a Sudanese security 
officer — tapped me on the arm. 
“You have asked more than enough 
yuestions,” he said. At which Mr 
_ -aGer went off to inspect his 





+ Fal i 
In recent days, U.S. officials have hinted that they may be willing to provide the 


weapons — known in military circles as MANPADS, short for “man-portable air 


defense system’ — with one major caveat: They include technical controls that 


would limit where they can be used to ensure they don't one day fall into terrorist 
hands. 





Using GPS, 


the missiles could be programmed to lock out users 1n 


certain locations, according to the Small Arms Survey report — but * Source: LA Times, RT, WSJ, FP 





Operational 









Weapons sales, training of syrian 
scope rebel forces . 
Location Fastern Europe, Jordan, syria 
Planned by Central Intelligence Agenc ° 
Target oyrian Army 
Date 2012 — 2017 ° 


Charles Lister @ @Charles Lister - 





F Replying to 
- A small number (+/- 12) of MANPADS were sent Into northern 
as an immediate reaction to 's Intervention In Sept. 


© 10 ) 28 


Charles Lister @ @Charles Lister - 5 Apr 2016 


Ll 66 





- x2 were likely used In March ‘16 downing. 
- Looks likely x1 was used today. 


me - Those MANPADS were to be used for select political purposes. 


TIMBER SYCAMORE 


Program supposedly barred MANPADS ... 


Other reports claim US-supplied MANPADS did 
make it into Syria 


Unclear whether PROTEGO was part of this or 
ever fielded 


in late-'15 


THE HARRY POTTER CONNECTION 


Devil Snare] Keys numbers start at 








To aid in keeping the key numbers grouped, the 
1000 and Keys numbers start at 2000 





Devil's Snare is a magical plant with the ability to constrict or strangle 
anything In Its surrounding environment or something that happens to 
touch it. Devil's Snare does not seem to be common, but certain 
Herbologists have access to It. 








The Shield Charm (Protego) is a charm that protects the caster with 
an invisible shield that reflects spells and blocks physical entities. 








* Source: httos://harryootter.fandom.com/ 
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SECRET//NOFORN 


Software System 





Description a 
AT = Anti-Tamper 
: Detect Powers MSS 















w 

c 

aw 

Li 

< 

Pl aa ah ‘ 
Battery Relay Control single Wire Message Iraffic | 
MP (Collar) “ Bi-directional “9 

. - PIC24FJ32MC104 TSS Comm Mss 
‘ cuacwisin PIC24F)32MC104 PIC24F)32MC102 
£  EOM 

=a 

aw 
x 





Grip Stock 





SPI 


7- = tracking signal 





Programming 
Configuration Box 





IB = In Border 
OM = End of Missio 


Master - LCD Display 
Slave - R542? Interface 








SMART FENCE MECHANISM 


| Single Wire Message Traffic = 








PIC24FJ32 














Open switch = no signal from missile 
seeker to gripstock targeting system 


MSS CLOSES SWITCH AFTER MESSAGE FROM MP VIA TSe 


Pl oN P2 ~ P3 
MP TSS MSS 





Beacon 








BCU Power Detected 
Serial Encrypted Data 


= 





Message only 
sent after BCU 
inserted and 
geofence holds 











Encrypted 


IF 
IN BORDER AND channel requires 


VALID GPS AND 
NOT END OF OP PERIOD Set Audio Switch On 


serial Encrypted Data 


presence of keys 





Set Audio Switch On 
Serial Encrypted Data 





Closed 


Audio and Closed 
Sigma Dot Audio Switch 


Switch 





KEY ERASURE 


Beacon After entering In MP TSS 


border once AT or low 
“ battery event 


e 
e 
e 
e 
e 
e 
e 
e 
e 
e 
e 
“, 
e 





Out of border or 
End of Mission 





Missing missile 
detected 





<4 
Erase MP key _ Erase pulse Erase TSS key 


LED 
Green 
MP Off 
Red 


reen 
TS5 Off 
Red 


Green 
Mss Off 
Red 














STATUS INDICATION LEDS 


. on Suite Case 


Eat Ok No aT Event sion Time Good | Operat 
forage tino Seep 
Batteries Off Batt Low | | ae 








No BCU | 
ratory 





Audio Relay On 


Operators need to know system is ‘good-to-go 


before running up to aircraft 


P MESSAGE FORMAT 





"SS |\ver P1 CRC P1 Ver P2 CRC P2 Ver P3 CRC PR. OSY oa Rt 
Header S/N Nonce Count 
oe A 
a aoa/i;mi mimi mi a; mig maim i wma ma, wa: wa)! ma 
x NN NININININI NI NI NI NIN HIN 
Sioa Ss 4alS/4)S/4)S/4)/S/4)S)4)s 
w) 
> 
0 11/2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17/18 19 20 21 


Encrypted (128 bit) 


¢ Sent over RS422 and internal serial bus between different MCUs 


¢ For unencrypted messages, only Key S/N and control/CRC bytes are set 





PROGRAMMING BOX <-> PROTEGO 


RS422 Messages Msg Tx Msg Rx 






Tube Smart Switch (MSS) 


Shy Shy 

“ey fe me 

(P2) S S 
"0x02 | —sRequest MP ver —/x| || C 
Slave Processor (MP) | 003 |Request tss ver x) || x 
S422 Interface "0x04 | Set MP to Prog Moae [x| | [x 
(Pa) "0x05 | Set MP to Prog State [x| | |x. 
"0x06 | Set Beacon to Prog State [x| | |x 
"0x07 [Stop Prog States (MP+Beacon)|x| |_| x 
"0x08 | Set to Factory Test Mode [|x| | | x 
0x09 | Set to storage Mode |x| [| x 
roxoa | Set to Tactical Mode [x| | |x 
Osos | Turn Batteries on [x| || x 


OxOC Turn Batteries Off 















PROTEGO INTERNAL 


Master Processor (MP) Serial Messages Msg Ix By Msg Rx By 


oe Ctrl Command ————___si|: MP_| TSS MSS| MP_ TSS MSS 
F 
= ~ox0s| BCU inserted Pe 
[exes | ___pcu removed ft kT Of x | ft 
(MSS) “0x07 | Set MP to Prog State | | x Px PL 
% 0x08 | Set Beacon to Prog State | — | X | | X || 
0x09 | Stop Prog States (MP+Beacon) | | X | | X | 
Operationa1| __ i ae eae 
Messages 













“oxoe | Set to Storage mode | |x| |x| | 
“oxoc [Set to Tactical mode «| | x | | «| | 
“oxo | ‘Turn Batteries on «| | x | | x |) 
“oxor [Turn Batteries off | | «| | «| | 
~oxor [| ~*‘Missile Detectea—~—~—=«Y~SC=<‘“it® *dL YL 


HYPOTHETICAL PROTEGO LIFECYCLE 


1. Programmed with key material, 


switched to storage mode - 
” 6. If mission period expires without use, 
no 4. Handover to returned to facility 
Si.  “less-than-trusted” 3" party 








2. Shipped to (covert?) ~ 
facility in/near theater 


ly Qi : . tae 
S/S 
> 7) 


7. Status check (LEDs), either put in 
storage mode or reconfigure 





3. Programming box configures 
geo- & time fence, 
enables tactical mode 





8. If AT event detected, 
raise alert 


htto://www.smallarmssurvey.org/tileadmin/docs/G-Issue-briefs/SAS-IB11-MANPADS-use-control.podf 





CRYPTOGRAPHIC ARURITEGTVAIE 


1 maintenance key embedded 























ra ra ‘a in Tw images, identical for all 
- Pbdddl 7 : Pbddde nny ; PROTEGO instances 
1. Keys are generated & written MP TSS mss. Never erased 








lao aE =| 





- One 128-bit key per MANPADs 

- Identical for MP, TSS & MSS 

- MSS never erased 

- Suggests AES-128 in ECB mode 
(since msg is 128-bit) 


Browse 








2. Programming box does not contain any keys, 
possibly queries them from a backend? 


3. Unclear how reconfiguration is done exactly, 
but after key erasure still need to talk to PROTEGO. 
Makes sense system falls back to global maintenance key. 





SECRETSOPORN ATTACK SURFACE 


|Operational Batt (D) | 
i 
all 


Software System 
Description 


BCU 
Power 























Monitor #2 


Extracting / 






Modifying Keys 


Physical Tampering 











AT Events 









_ Bi-directional “_ 
Tss — Mss 
PIC24F|32MC104 PIC24F|32MC102 


MP (Collar) 
PICZ4F)32MC104 






Single Wire Message Traffic 





Bi-directione 
Conn 


Gig Modify / attack | 


system logic 2 - a Tt 
| Audio and Sigma Dot | _ | Audio and Sigma Dot 


Beacon Interface 





Programming 
Configuration Box 







Physical Tampering 






Master - LCD Display 
Slave - R542? Interface 


Changing system state / configuration 





PHYSICAL TAMPERING 


uy 
> 
< | 
Pl PIC24F)32 
MP (Collar) 
” PIC24F/32MC104 
GPS VALID 


BCU Detected 


Beacon Interface 


Orange Wire 


Beacon Interface signals Smart Switch 


Eg. Cause default-true evaluation Eg. Ensure it’s normally-closed 





ANTI-TAMPER MEASURES 








Active Meshes 


— 


ad — a 
Ay 





ee lH rsa 


* httos://siliconprOn.org/wiki/doku.php?id=physical_protection, www.cellspare.com, www.chasecorp.com 
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ANTI- TAMPER MEASURES 





¢ Many well-explored invasive techniques, also via backsiae™ 


¢ Keys stored in flash, not battery-backed SRAM 
¢ Attacker wno cuts write-enabie line might prevent erasure 





¢ issues: Knowledge & capital intensive 


¢ Aliso: there s a warhead there... 


* httos://www.blackhat.com/docs/us-15/materials/us-15- Thomas-Advanced-|IC-Reverse-Engineering- Tfechniques-In-Depth-Analysis-Of-A-Modern-Smart-Card.pdf, 
httos://oacsec.jp/osi13/osj2013-day2 Dmitry starbug slides PacSec.padf 


ANTI-TAMPER MEASURES 





¢ Bigger issue: unencrypted seeker signals would mean 
tampered smart switch could render PROTEGO moot 


¢ If seeker can get lock-on & fire signal from gripstock, it’s over 


¢ Don't know if this is the case 


¢ Dont know how hard tampering with that switch Is 





LOGICAL TAMPERING 


a a 

*y 
z *, 
| . 


/Bypass Fence\ 





Change Fence) /Repr ogr am MP\ 
| Parameters | | Firmware | Attack GPS 





fo oy ia > 

( Via ‘Via Internal) 

/ Programming \ i Interfaces \ 
| Interface | | enna 


. 
— = 


Using Mission Using 


Key Maintenance Key 





LOGICAL TAMPERING © 





/ Understand \ / Obtain Keys \ 

i Protoco| \ — i. 

- 
; 2 - 4 i . R : \, : Po ee - a i 7 . 
/ PROTEGO \ / Programming \ Extract Trom | " 


| Pires | [Gun Pires) PROTEGO MCUs / Extract from \ 
| ‘Programming Box | 
' 









Extract 
Firmware 


| EXTract | 
/ Firmware | * Assuming box has access to keys and Steal 






isn’t rapidly locked out from some Programming 
backend during / after theft Box 





Steal 
Programming 
box 






Most approaches will likely require ‘sacrificing’ at least 
1 MANPADSs for research 


EXTRACTING AND/OR MODIFYING 
KEYS & FIRMWARE 


Debugging Interfaces Side-Channel Analysis Software Bugs 








These approaches might trigger AT 
BUT: maintenance key is never erased! 
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DEBUGGING INTERFACES 


t Serial Programming (ICSP} 


IfCUl 


In-C 


1. 





1 
9 
3 
4 


Master Clear (MCLR) 


32 @ RAS 


RP224/CN1B/RCE 


RP23A/CNI7T/RCT 


RP24Q/CN20/RCB8 


31 [| OSC2/CLKO/CN29/RA3 
30 [| OSCI/CLKVCN30/RA2 


29/| Vss 


Power (Vdd) 


2. 


RP254/CN1WRCI 


5 


28/| Voo 





VeaPp || 7 


PWMI1H2/RP1LOGVCNI6/RB10 
PWMIL3/RP11LA)(CN1S/RB11 
PWM1H2/RP12@)/(CN14/RB12 
PWM1L2/RP13@V/CN13/RB13 


27/7] ANS/RP1SQVCNIOIRC2 


26|] AN7/RP1I7AVCNORC1 


Ground (VSS) 


5. 


8 
9 


24|| ANS/C3IND/C2IND/RP3@)CN7/RB3 
23] | AN4/C3INCIC2INCIRP2U)/ICN&/RB2 


11 


Data (PGD) 


4 





rt 
ec 
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Co 
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el 


TY /SN Oi TAY /ONITO/ENIZ DLO AD NR 
O9Y PN jd /ONITIYNIZDZNV/TOADd 


We NO/eOS LO/ENITINIE DTN Y/cD3 Dd 
OVE /ENOYTOSLOWNITO/aNIE O/ONY/e0S Dd 
SOI 





qogAy 
SSW 


STSea/TIN lpg STdd/T TT AMd 
PTSe/eTNO/(yPTdd/OOLe/THTAMd 


iva 
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Clock (PGC) 


5. 





ISSUE: MICROCHIP CODEGUARD 


Read-out & 
Write Protection 


Boot Segment 
store Secure Bootloader, | Highest Privileges 
Boot ISR, Authentication/ 

Crypto Utilities, Keys, 
Special algorithms, etc. 


Optional Segment 


Configured via 


secure Segment 














Configuration Words (CW) Optional Segment Store special algorithm Kontiguranke 
program, restricted thira- orotected Moueae 
sores dle abhereiaretng / Segments with 


tables, secure ISR ee 
size options 


Violation triggers 
Security Reset 


CT=F alse lier le pa teal 
store Peripheral drivers & 
ISR, Large look-up tables. 
/O interface code, own IP, Lowest Privileges 

etc. 





* htto://ww1.microchip.com/downloads/en/DeviceDoc//01/79B.pdf, http://cs-people.bu.edu/rmancuso/courses/cs454 654-sp19/material/docs/dsPIC33F.23%20- 
%20CodeGuard%20Security.pdf 


PROTEGO MCU MEMORY LAYOUT 


Executable Flasn 


(orogram memory) 


1. Version Number 
2.16-bit image CRC calculated 


at Startup 
No mention of firmware authentication 


No mention of hardware root of trust or secure element 


Nothing beyond CodeGuard 


(unused program memory) 





Key Nr. 
Key (128 bit) 
Checksum(Key+Nr ) 


lf checksum does not match, 
key will not be loaded 


Probably holds AT events that can 
Bvent Log be read out by programmer 


CODEGUARD DISCLAIMER 


Note the following details of the code protection feature on Microchip devices: 








Microchip products meet the specification contained In their particular Microchip Data Sheet. 


‘ Microchip believes that Its family of products Is one of the most secure families of Its Kind on the market today, when used In the 
Intended manner and under normal conditions. 


: There are dishonest and possibly illegal methods used to breach the code protection feature. All of these methogs, to our 
Knowledge, require using the Microchip products in a manner outside the operating specifications contained in Microchips Data 
oheets. Most likely, the person doing so Is engaged In theft of intellectual property. 


° Microchip ts willing to work with the customer who Is concerned about the Integrity of their code. 


: Neither Microchip nor any other semiconductor manufacturer can guarantee the security of their code. Code protection does not 
mean that we are guaranteeing the product as “unbreakable. 


Code protection Is constantly evolving. We at Microchip are committed to continuously Improving the code protection features of our 
products. Attempts to break Microchip's code protection feature may be a violation of the Digital Millennium Copyright Act. If Such acts 
allow unauthorized access to your software or other copyrighted work, you may have a right to sue for relief under that Act. 





CODEGUARD BASIC 


Maximum Memory Maximum Memory Segment Size (Bytes) Size (Bytes) 


Device Family 








All ‘AIPIC24F devices —~CS devices All on-chip ~ All on-chip Flash _ 
memory 


¢ Only support for General Segment Code & Write Protect 


Original lst Step 2nd Step 


| @HOOh 


| BB1FFh 
00200h 


¢ No separate segments for bootloader or keys 


j OLFFFh 
02000h 


¢ PIC18FXX2/XX8 suffered from ‘heart of darkness 


attack, unclear wnether similar attack applies to 
PIC24F 


ee 
Lal 
on 
on 
om 
a 


OSFFFH 
O6000h 





* https://www.openpcd.org/images/HID-iCLASS- | Zoe 
securitv.odf 








SIDE-CHANNEL ATTACKS 
(SPA/DPAICPA) ae 


PROG CONTROL BOX 


| | Control, 
(Slave Processor) 


Cyphertexts 








Time ms/div 
aes Sl ee 


9) ae ee aa 
2—¥ ~~ lt 


Y Amplitude 
{ Se ) | 
ey ae i, —_—_————_ > 
— © = C t | | 
ee O N rO , 
Ms ta 


Waveform | 
data 





No hardware crypto, 
no SCA counter- 


measures Probably no SW C-Ms in PROTEGO FW 
Might affect power consumption adversely 


Computer 





Target maintenance key, extract & apply 
to different MANPADS 





INVASIVE ATTACKS 


UY llqnt source 





reflected light 


XX 


metal shield 










“control 
qate 





trapped 
charges 


“Tlaating 


SOUTCE 


Prasure due to 
bounced light 


PIC24FJ2 Series Microcontrollers MCU Code Extraction Crack,Break,Unlock 





PIC24FJ32GB002 PIC24FJ32GB004 PIC24FJ32MC101 PIC24FJ32MC102 





PIC24FJ32MC104 





PIC2Z24FJ48GA002 





PIC2Z4FJ48GA004 





PIC2Z4FJ64GA002 





* http://siliconexposed.blogspot.com/201 1/03/microchip-pic12it683-teardown.html, httos:/Wwww.bunniestudios.com/blog/?page_id=40, http://www.unlock- 
Ic.com/ 


SOP WARE VULNERABILITIES 








Memory corruption or State machine logic bugs 
Exploit a vuln to send a smart switcn close command or extfiltrate keys 
issue #1: tiny attack surface exposure over programming interface 


issue #2: full-olackoox VR & XD Is hellish, need firmware extraction 


ATTACKING GPS 


PROTEGO core security decision based on 
GPs-derived info (location & time) 








IF 
IN BORDER A 
VALID GPS AND 
———— Set Audio Switch On 


Serial Encrypted Data 











GPS 101 


¢ Global Navigation Satellite System (GNSS) 
GPS, GLONASS, Galileo, Beidou 





¢ PROTEGO probably uses plain C/A codes from civilian signal 
Description 


L1 1575.42 Coarse acquisition (C/A) & encrypted precision (P(Y)) codes 
MHz Civilian (L1C) & Military (M) codes on future block III 
Satellites 
L2 1227.60 P(Y) code, L2C & military codes on Block IIR-M and newer 
on 
Nuclear detonation detection (NUDET) 
MHZ 


L4 1379.91 Studied for 1onospheric correction 
5 MHz 

1176.45 Proposed civilian Safety-of-Life (SoL) signal 
MHZ 


GPS JAMMING 


¢ If GPS is unavailable: MANPADS won't fire. 
¢ If GPS is unavailable: Possibly no key erasure 





¢ Naive approach: overpowering noise on L1 & L2 bands 





¢ Jamming might be detected (signal anomalies) 
¢ And corrected for (multi-src correlation, noise filtering) 
¢ Or trigger key erasure 


* Effects of GNSS jammers and potential mitigation 


approaches - H. Kuusniem| 
LH A \ /| \ /| | \} A look at the threat of systematic jamming of GNSS 
- J. Curran et al. 


¢ Smarter approach: 
combine jammer with GNSS info 


¢ Trigger short & sparse bursts aligned with specific msg portions 
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FIGURE2 Position in time of various portions of sensitive data contained in each of the GPS, 





Galileo and GLONASS 





GPS SPOOFING 





¢ GPS is unauthenticated, weak signal 
¢ Allows for signal replay / forging 
¢ Commercial / SDR solutions have made this pretty accessible 


¢ Collect in-fence signal, move MANPADS in Faraday cage, replay 
loop — 





* Another Place, Another Time - S. Gerling 
Time and Position Spoofing with Open Source Projects - K. Wang et al. 
Targeted GPS spoofing - B. Hermans et al. 


https ://(www.gpsworld.com/defensesecurity-surveillanceassessing-spoofing-threat-31 /1/ 
httos://github.com/osqzss/gps-sdr-sim 





GPS SPOOFING 


¢ Counter-Measures: 
anomaly detection: signal strength, latency, loss of lock, etc. 
multi-source correlation 
internal reference clock 
etc. 


¢ Issue: active counter-measures drain power, not likely in PROTEGO 





¢ Carry-off attack: carefully align spoofed signal, gradually increase power 
and take over while avoiding loss of lock or triggering CMs 
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SIMILAR SYSTEMS = SIMILAR ATTACK 


a 5 A: 










¢ Theft prevention (eg. Armored trucks) 


e Ankle monitors 





¢ Smart guns 


¢ UAV area denial 





¢ Autonomous driving 






“8)46.850°, -116.792° 


a 2 


¢ Employee monitoring 


a i 
Geofence 


¢ Livestock management 
(cyberpunk cattle rustlers?) 


* 








IS THIS STUFF ATTACKED IN PRACTICE? 
Yes, especially through GPS jamming 





TLP: GREEN 









Feds arrest rogue trucker after GPS 
jamming borks New Jersey airport test 


FB/ CYBER DIVISION 


Private Industry Notification 
DATE: 2 October 2014 


Car thieves using GPS 'jammers' rv sna 


(U) Cargo Thieves use GPS Jammers to Mask GPS Trackers 





(U) This Private Industry Nottfication (PIN) highlights the use of Global Positioning Systems (GPS) 
jammers by criminals to thwart law enforcement response and investigation into cargo thefts in the United 


J ammers overwhelm anti-theft devices on Cars Ind lorries - and States. Since at least February 2012, various law enforcement and private sector partners have reported 


that GPS tracking devices have been jammed by criminals engaged in nefarious activity including cargo 


later versions could be used to disrupt ar traffic theft and illicit shipping of goods. Although banned by federal law, the jammers are readily available over 


the Internet and easy to employ. 


(U) GPS Jammers are Smali and Unobtrusive 


UNCLASSIFIED 


: . =. _ = _  - _—— DS | - oe eo , ? (U) GPS jammers are transmitters that block tracking 
() regan Se | CT) | } } eC TO utine V J a | } | ] } In? (5P S devices from acquiring GPS broadcast signals by (U) An example of a GPS Jammer 
— a a | ‘ a - transmitting electromagnetic interference” (noise) on the 
same frequency’. They come in many shapes and sizes. 
with varying capabilities. Plugged into a standard cigarette 
lighter jack, a small jammer (pictured mght) operating in 


t PS t a va N + N R Po W N the vehicle will disrupt GPS logging or GPS tracking 
, , ft 6 aC rks , gele , 3, ogu e ) e r a EE systems for a radius of up to five yards. Mid-sized and 
larger jammers typically block a combination of GPS, 
cellphone, W1-F1, and other signals and thus also prevent 
the tracker from wirelessly reporting any location or status 
data. In a test conducted by a federal law enforcement 
agency, GPS jamming devices were determined to be 
effective to approximately 65 feet. A large GPS jammer 
can disrupt any tracking device or receiver within a radius 
of several hundred yards. (U) Source: Los Angeles Sheriff's 


Wage Electronic War 





httos://oublicintelligence.net/foi-cargo-thleves-gos-jammers/ 





CONCLUSION 


PROTEGO: Not a GPS-guided aircraft assassination module 
But likely MANPADS geofencing for covert arms supply 
Unclear where, when or if ever fielded. TIMBER SYCAMORE? 


Utilizes COTS technology in similar fashion to commercial systems 
A geofence Is a geofence 








Possible Achilles heels: 
¢ Unencrypted seeker signals? 


¢ Lack of secure boot & firmware authentication 
¢ Global maintenance key 
¢ Reliance on civilian GPS without clear EW counter-measures 
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